CLAIMS 

What is claimed is: 



A method for certifying pieces of data in a system with at 
least two levels of authorities > comprising the steps of: 

(a) presenting a piece of data r/equiring certification to a 
l^first level authority for i]fispection of a given 
property ; 

(b) if the piece of data pass^ the inspection of the first 
level authority, causing ^ higher authority to receive* 
an indication that the p%ece\of data has passed the 
inspection of at leas1 

(c) having the higher autbofciw issue a certificate that 
the piece of data possesses the given property, the 
certificate including /a signature of the higher 
authority but not including a public key of the first 
level authority; and J 

(d) storing information /in order to keep at least the first 
level authority acobuntable for pieces of data that the 
first level authorAty contributes to certify.: 



^f^rst level authority; 



2. A method for certifying, according to claim 1, wherein the 
piece of data presented is a public key having at least one 
corresponding secret key associated therewith. 



3. A method for certifying, according to claim 2, wherein the 
given property of the public key includes a given user choosing 
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the public key to be used in connection with at least one of: a 
digital signature system and a public key encryption system. 

4. A method for certifying ^^acp^rding to claim 3, whereij^^ 
inspection'-by^'the'flr^^ leve(L^tthority includes identifying the 



presenting user. 

5. A method for certifying, according to claim 4, wherein the 
inspection includes verifying that the user knows the secret key 
that corresponds to the public key. 

6. A method for certifying, according to claim 5, wherein the 
inspection includes checking a digital signature of a given 
message signed by the user relative to said public key, to 
determine that the user knows the secret key associated with the 
public key. 

7. A method for certifying, according to claim 5, wherein the 
inspection includes verifying that the user knows the secret key 
associated with the public key by having the user decrypt a given 
message that is encrypted using the public key. 

8. A method for certifying ,^a6cording to claim 1, wherein a 
certified public verification of the higher authority is 
sufficient to verify the cei2^i{eicate . 



9. A method for certifying, according to claim 1, wherein the 
piece of data is included in the certificate. 
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0. A method for certifying, accordiiVg to claiin 9, wherein the 
higher authority contributes additional data that is included in 
the certificate. / 

11. A method for certifying, according to claim 1, wherein the 
information that is stored can be Ased to identify the first 
level authority. / 

12. A method for certifying, according to claim 11, wherein the 
information that is stored is a/digital signature of the first 
level authority. // 1 

13. A method for certifying, /according to claim 11, wherein the 
information that is stored irfdicates the name of the first level 
authority. / 

14. A method for certifying, according to claim 1, wherein at 
least a portion of the information that is stored is stored in 
the certificate. / 

15. A method for certifying, according to claim 14, wherein all 
of the information that is stored is stored in the certificate. 



16. A method for certifying, according to claim 1, wherein the 
certificate includes a/ digital signature of the first level 
authority. / 



17. A method for certifying, according to/ claim 11, wherein the 
certificate includes a digital signature 6f the first level 
authority. 



18. A method for certifying, according to claim 12, wherein the 
certificate includes a digital signatur^ of the first level 
authority. 

19. A method for certifying, according to claim 1, further 
comprising the step of: 

(e) the higher level authority causes additional 

information to be saved which, when combined with the 
information that is stotecJ, groves that the first level 
authority contributed /to jb^^if ication of the piece of 
data. 



20. A method for certifying, according to claim 1, further 

comprising the step of: ^ 

(e) a witness causing information to be saved that 

indicates that the tiJiSt level authority contributed to 
certification of the piece of data, wherein the 
information that is aiored is stored in a way to 



indicate the identity of the witness 



21. A method for certifying, / according to claim 20, wherein the 
information caused to be saved by the witness includes a portion 
of a digital signature and the information that is stored 
includes an other portion o^ a digital signature. 
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22. A method for certifying, according to claim 21, wherein the 
portions of the digital signature Jan be combined to prove that 
the first level authority contribut|ed to certification of the 
piece of data. 

23. A method for certifying publii keys where there are a 
plurality of authorities A^, . . A„, where each i<n authority 
A,, can send authority A,-+^ authenticated messages so that at least 
A,-^^ can. be sure that these messages; genuinely come from A,, and 
authority A„ has a signing key SK„ kn^ an associated certified 
public key, PK„, the method comp/ibidlr the steps of: 

(a) having a verif icatiorV kfey^PK^^ presented to authority 

(b) having authority A^ verify, by means of a predetermined 
procedure, that PK^ possesses some properties out of a 
set of given properties ; 

(c) for all i<n, having authority A,, send authority A,.+; a 
message indicating that PK^ has been verified to 
possess the given properties; 

(d) having A„ issue a certificate for PK^, the certificate 
including a signature /provided using SK„ but not 
including a public key of at least one authority A,, for 
some j<n; and / 

(e) storing information to keep A,, accountable for keys 
that A^ contributes to certify. 
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24. A method for certifying, according to claim 23, wherein 
the certificate does not include a public key of at least one 
other authority Aj^. 

25. A method for certifying, according to claim 24, wherein 
the certificate does not include public keys of any authorities 

A;, A2 . • . A„.2f ^-i* 

26. A method for certifying, according to claim 25, wherein 
the certificate does not include a public key for A„. 

27. A method for certifying, according to claim 25, wherein 
the certificate includes a public key for A„. 

28. A method for certifying, according to claim 23, wherein 
knowledge of PK„ is sufficient to verify the certificate. 

29. A method for certifying, according to claim 23, wherein PK^ 
is included in the certificate. 

30. A method for certifying, according to claim 29, wherein at 
least one authority A,., i<n, contributes additional data that is 
included in the certificate - 

31. A method for certifying, according to claim 30, wherein all 
authorities contribute additional data that is included in the 
certificate. 



-23- 



32. A method for certifying, according to claim 23, wherein a 
digital signature of is included in the certificate, 

33. A method for certifying, according to claim 32, wherein 
digital signatures of all of the authorities are included in the 
certificate. 

34. A method for certifying, according to claim 23, wherein for 
all i<n, authority A,, sends authority A,-+; a digital signature of 
A... 

35. A method for certifying, according to claim 34, wherein for 
all i<n, authority A,- sends authority A,.+; a digital signature of 

A,- along with digital signatures of all previous authorities A^.^, 
,Aj'_2 . • . "A-^ • 

36. A method for certifying, according to claim 35, wherein 
digital signatures of all of the authorities are included in the 
certificate. 

37. A method for certifying, according to claim 23, wherein the 
information that is stored car/ ye J^sed to identify A^.. 

38. A method for certifying ,/acfeording to claim 37, wherein the 
information that is stored is a digital signature of A^.. 
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39. A method for certifying, according to claim 37, wherein the 
information that is stored indicates the name of A,- 



40. A method for certifying, 
least a portion of the inform^ 
the certificate. 



rding to claim 23, wherein at 
:i0n that is stored is stored in 



41. A method for certifying/, according to claim 40, wherein all 
of the information that is stored is stored in the certificate. 

42. A method for certifying, Recording to claim 23, further 
comprising the step of: 

(f) an authority A^^axi^ing additional information to be 

saved which, V^ojnbined with the information that is 

stored, ppoves that A,, contributed to the certification 
of PKy. 



43. A method for certifying, according to claim 42, wherein k> j . 



44. A method for certifying, according to claim 23, further 
comprising the step of: yf\ 

(f) a witness causing information to be saved that 

indicates that A^- o(bTAjpAh\it^di to the certification of 
PKy, wherein the iiiformktion that is stored indicates 
the identity of the witness. 
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45. A method for certifying, according to claim 44, wherein the 
information that is caused to hi saved by the witness includes a 
portion of a digital signatur^r'lan^ the information that is stored 
includes an other portion ofl ajf^igital signature. 

46. A method for certifying,/ according to claim 45, wherein the 
portions of the digital sign&ture can be combined to prove that 
A,- contributed to the certificate being issued. 
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